%0 Journal Article
%T Two-Round Password-Only Authenticated Key Exchange in the Three-Party Setting
%A Junghyun Nam
%A Kim-Kwang Raymond Choo
%A Sangchul Han
%A Juryon Paik
%A Dongho Won
%J Symmetry
%P 105-124
%D 2015
%I MDPI AG
%R 10.3390/sym7010105
%X We present the first provably-secure three-party password-only authenticated key exchange (PAKE) protocol that can run in only two communication rounds. Our protocol is generic in the sense that it can be constructed from any two-party PAKE protocol. The protocol is proven secure in a variant of the widely-accepted model of Bellare, Pointcheval and Rogaway (2000) without any idealized assumptions on the cryptographic primitives used. We also investigate the security of the two-round, three-party PAKE protocol of Wang, Hu and Li (2010) and demonstrate that this protocol cannot achieve implicit key authentication in the presence of an active adversary.
%K password-only authenticated key exchange (PAKE)
%K three-party key exchange
%K symmetric encryption
%K communication round
%K dictionary attack
%K implicit key authentication
%U http://www.mdpi.com/2073-8994/7/1/105